ProHoster > Ibhulogi > iindaba ze-intanethi > I-ProFTPD 1.3.8 ftp ukukhululwa kweseva

I-ProFTPD 1.3.8 ftp ukukhululwa kweseva

Emva kweminyaka emibini enesiqingatha yophuhliso, ukukhululwa okubalulekileyo kwe-ftp server ye-ProFTPD 1.3.8 iye yapapashwa, kunye namandla ekwandisweni kunye nokusebenza, kunye nobuthathaka ekuchongweni kwexesha elithile lobuthathaka obunobungozi. Ukukhutshwa kokulungiswa kweProFTPD 1.3.7f kufumaneka ngexesha elifanayo kwaye kuya kuba ngowokugqibela kwi-ProFTPD 1.3.7 series.

Iinguqulelo eziphambili zeProFTPD 1.3.8:

  • Inkxaso isetyenzisiwe kumyalelo we-FTP CSID (Client/Server ID), onokusetyenziselwa ukuthumela ulwazi lokuchonga isoftware yomthengi kwiseva kunye nokufumana impendulo enolwazi lokuchonga iseva. Umzekelo, umthengi angathumela "CSID Name=BSD FTP; Version=7.3" aze afumane impendulo ethi "200 Name=ProFTPD; Version=1.3.8; OS="Ubuntu Linux; OSVer=22.04; CaseSensitive=1; DirSep=/;".
  • Inkxaso eyongeziweyo yolwandiso lwe-"home-directory" ukwandisa i ~/ kunye ne ~umsebenzisi/ iindlela zokuphunyezwa kweprotocol yeSFTP. Ungasebenzisa "iSFTExtensions homeDirectory" ukuyivula.
  • I-mod_sftp yongeza inkxaso ye-AES-GCM ciphers "aes128-gcm@openssh.com" kunye ne "aes256-gcm@openssh.com", kunye nojikelezo lwesitshixo se-host ("SFTPOptions NoHostkeyRotation") usebenzisa izandiso ze-OpenSSH "hostkeys-00@openssh.com" kunye ne "hostkeys00com". Inkxaso eyongeziweyo yokwenza i-AES GCM ciphers kumyalelo weSFTPCiphers.
  • Kongezwe "--enable-pcre2" ukhetho lokwakha ngelayibrari yePCRE2 endaweni yePCRE. Ukukwazi ukukhetha injini yokubonisa rhoqo phakathi kwe-PCRE2, iPOSIX kunye ne-PCRE yongezwe kumyalelo weRegexOptions.
  • Yongeza i-SFTPHostKeys isiyalele ukukhankanya ii-algorithms ezingundoqo ezinikezelwa kubathengi bemodyuli ye-mod_sftp.
  • I-Facts AddedDefault Umyalelo wokuchaza ngokucacileyo uluhlu "lweenyani" ezibuyiselwe kwiimpendulo zeMLSD/MLSD FTP.
  • Yongezwe i-LDAPConnectTimeout yomyalelo ukuchaza ixesha lokuphuma koqhagamshelwano kwiseva ye-LDAP.
  • Yongeza umyalelo we-ListStyle, okuvumela ukuba uvumele ukuphuma koluhlu lomxholo wesikhombisi ngendlela Windows.
  • Umyalelo weRedisLogFormatExtra uphunyeziwe ukongeza izitshixo zesiko kunye namaxabiso kwilogi ye-JSON, equkwe yiRedisLogOnCommand kunye neRedisLogOnEvent imiyalelo.
  • Ipharamitha yeMaxLoginAttemptsFromUser yongezwe kumyalelo weBanOnEvent ukuthintela indibaniselwano echaziweyo yabasebenzisi kunye Iidilesi ze-IP.
  • Inkxaso eyongeziweyo ye-TLS xa idibanisa kwi-Redis DBMS kumyalelo weRedisSentinel. Inkxaso eyongeziweyo kumyalelo weRedisServer wolungelelwaniso lomyalelo we-AUTH olungisiweyo osetyenzisiweyo ukusukela kwiRedis 6.x.
  • Inkxaso ye-ETM (Encrypt-En-MAC) i-hashes yongezwe kwi-SFTPDigests umyalelo.
  • Kongezwe iflegi ye-ReusePort kumyalelo we-SocketOptions ukwenza i-SO_REUSEPORT imo yesokethi isebenze.
  • Iflegi ye-AllowSymlinkUpload yongezwe kumyalelo weTransferOptions ukubuyisela ukukwazi ukulayisha kwiilinki eziyisimboli.
  • Inkxaso ye "curve448-sha512" i-algorithm yokutshintshiselana engundoqo yongezwe kumyalelo weSFTPKeyExchanges.
  • Ikhono lokutshintsha iifayile ezongezelelweyo kwiitafile zokuvumela / ukukhanyela zongezwe kwimodyuli ye-mod_wrap2.
  • Ixabiso elimiselweyo le-FSCachePolicy parameter litshintshiwe ku-"off".
  • Imodyuli ye-mod_sftp ilungiselelwe ukusetyenziswa nethala leencwadi le-OpenSSL 3.x.
  • Inkxaso eyongezelelweyo yokwakha ngethala leencwadi le-libidn2 ukuze lisetyenziswe kwihlabathi liphela amagama eedomeyini (IDN).
  • Into eluncedo ye-ftpasswd yokuvelisa i-password hashes ine-SHA256 endaweni ye-MD5 eyenziwe ngokuzenzekelayo.

umthombo: opennet.ru

Thenga ukusingathwa okuthembekileyo kwiindawo ezinokhuseleko lweDDoS, iiseva zeVPS VDS 🔥 Thenga ukusingathwa kwewebhusayithi okuthembekileyo ngokhuseleko lwe-DDoS, iiseva zeVPS VDS | ProHoster